- Products & services Products & services
- Resources ResourcesLearning
- Learning
- Identity University Get technical training to ensure a successful implementation
- SailPoint professional certifications & credentials Advance your career or validate your identity security knowledge
- SailPoint recertification program Get recertified by demonstrating ongoing learning
- Training onboarding guide Make of the most of training with our step-by-step guide
- Training FAQs Find answers to common training questions
- Community Community
- Compass
- :
- Products
- :
- Connectors
- :
- SailPoint Connectivity Updates
- :
- Disconnected applications: Your attacker’s favorite blind spot
Disconnected applications: Your attacker’s favorite blind spot
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Content to Moderator
In the world of identity governance, it’s easy to focus on the shiny new things. We talk a lot about securing the latest SaaS applications and cloud platforms. But what about the skeletons in the closet? What about that ancient ERP with no API, or that custom app that runs your factory floor?
The dangers of disconnected applications
Disconnected applications are risky because they're hard to connect, so they are almost always excluded from modern IGA programs. This is more than just a headache; it's a massive security risk.
Access to these systems is often managed through emailed requests and manual changes by a small handful of administrators. There are no access reviews, no automated de-provisioning, and no visibility for the security team.
This scenario is exactly what every attacker hopes for in terms of a playbook: An attacker gets credentials for a user who was terminated six months ago but whose access to the legacy financial system was never removed.
They log in, unnoticed, and exfiltrate sensitive data. Because the system is disconnected, SOC and SIEM tools have no visibility. This is not a hypothetical, as some reports indicate that over half of breaches can involve orphaned accounts that should have been de-provisioned.
Governing the ungovernable: How we can help
The disconnected application problem is where the "last mile" of governance comes in—bridging the gap between modern identity security and your most challenging legacy systems—and SailPoint is tackling this problem head-on.
We’ve developed a generic RPA integration for SailPoint Identity Security Cloud to support robotic process automation (RPA) platforms and satisfy these “last-mile connectivity” needs for disconnected applications. Enterprises can now use RPA tools and SailPoint together for aggregation and provisioning disconnected applications.
The problem of disconnected applications is a pervasive identity security issue that affects nearly every organization: If an application can’t be connected, it can’t be governed—and that creates loopholes that could lead to security risks. We can help. Reach out to learn more!
-
Access Management
8 -
Access Risk Management
1 -
Active Directory
1 -
AI
7 -
AI-Driven Identity Security
1 -
Amazon Web Services
1 -
Announcement
17 -
Anthropic Claude Enterprise
1 -
application
1 -
Application Onboarding
9 -
Best Practice
2 -
Ceridian Dayforce HCM Connector
2 -
Certification
1 -
Connectivity
12 -
Connector
21 -
Connectors
1 -
Critical Update
1 -
CrowdStrike
1 -
Delimited File Application
1 -
Deprecation
3 -
Disconnected Applications
1 -
End of Support
1 -
Enhancement
3 -
FedRAMP
1 -
Governance
2 -
Guidewire
1 -
Identity Risk
1 -
Identity Security
10 -
Identity Security Cloud
2 -
Identity Security Cloud (ISC)
20 -
IdentityIQ
6 -
Integration
9 -
IQService
2 -
JDBC
1 -
Microsoft
2 -
Monthly Product Release Highlights
2 -
Navigate
1 -
New Capability
1 -
New Release
1 -
Okta Connector
1 -
Onboarding
1 -
Oracle
1 -
Privileged Access Management (PAM)
1 -
SaaS Connector
8 -
SailPoint connectivity
1 -
SailPoint Delivered Connectors
7 -
SAP
6 -
SAP Analytics Cloud
1 -
SAP Governance Risk and Compliance
2 -
Security
1 -
Separation of Duties (SoD)
1 -
ServiceNow
2 -
Support Policy
1 -
Update
6 -
Web Services
1 -
Workday
1 -
Workday Connector
1
- « Previous
- Next »
